pwnedlabs 25

• Reveal Hidden Files in Google Storage Aug 4, 2025
• Pivot Through Service Accounts using Dangerous Permissions Aug 4, 2025
• Leverage Google Workspace for GCP Resource Access Aug 4, 2025
• Impersonate GCP Service Account for Privileged Access Aug 4, 2025
• Illuminate GCP by Fuzzing IAM Permissions Aug 4, 2025
• Gain Entry to GCP via GitLab Commit Aug 4, 2025
• Exploit SSRF with Gopher for GCP Initial Access Aug 4, 2025
• Unlock Access with Azure Key Vault Aug 4, 2025
• Loot Exchange, Teams and SharePoint with GraphRunner Aug 4, 2025
• Azure Recon to Foothold and Profit Aug 4, 2025
• Azure Blob Container to Initial Access Aug 4, 2025
• Unauthenticated AWS IAM Principals Enumeration Aug 4, 2025
• SSRF to Pwned Aug 4, 2025
• Prevent Breaches with AWS IAM Access Analyzer Aug 4, 2025
• Loot Public EBS Snapshots Aug 4, 2025
• Intro to AWS IAM Enumeration Aug 4, 2025
• AWS S3 Enumeration Basics Aug 4, 2025
• Identify IAM Breaches with CloudTrail and Athena Aug 4, 2025
• Hunt for Secrets in Git Repos Aug 4, 2025
• Exploit Jenkins in the Cloud Aug 4, 2025
• Escalate Privileges by IAM Policy Rollback Aug 4, 2025
• Bypass Restrictions in API Gateway Aug 4, 2025
• AWS S3 Enumeration Basics Aug 4, 2025
• Assume Privileged Role with External ID Aug 4, 2025
• Abuse OpenID Connect and GitLab for AWS Access Aug 4, 2025